Release date:
2025-10-03 15:50:34 UTC
Description:
* SECURITY UPDATE: Node.js SignTraits::DeriveBits() remote crash vulnerability
- debian/patches/CVE-2025-23166.patch: fix incorrect ThrowException() call
in background thread to prevent process crash
- CVE-2025-23166
Updated packages:
-
alt-nodejs18-docs_18.20.8-1+tuxcare.els1_amd64.deb
sha:0fa03678d035c2e5c8460f005aa21b636e7d1c03
-
alt-nodejs18-nodejs_18.20.8-1+tuxcare.els1_amd64.deb
sha:4fb75450a69bd767641592205f9612a575a429d4
-
alt-nodejs18-nodejs-devel_18.20.8-1+tuxcare.els1_amd64.deb
sha:604bd408f6e1dd517db86a60a0f3535bb2753e31
-
alt-nodejs18-npm_10.8.2-18.20.8.1_amd64.deb
sha:df3a07cce15a8dc64f74f8eee00b855e98872f60
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
